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AMENDMENTS TO THE CLAIMS 



The listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listine of Claims: 

1. (Currently Amended) In a network environment that includes a public network 
and a private corpomte n etwork, the public network including a client external to the private 
eorporate network, a method of a commxmications device of the external client establishing a 
secure connection over a public network to the private corporato network without restricting the 
commimications device to working through the private e orporate n etwork, the method 
comprising the followin g^ foUowinR: 

a specific act of the external client establishing a coimection with the privat e 
corporate nelw^oyk- a virtual private network access server of the private network over the 
public network using the coninnmication devic e -sttoh- ^Qt . the virtual private network 
setvcr providing i t i c q o though t he external client is part o f- access to t he private cor porate 
network anH thorofor c can acc oGo on e or moro intomal reoources of as thougb_the 
external client is part of the private corporate network; 

a specific act of the external client providing security to the connection thr ough a 
commimication protocol that resides at or above a socket layer in a protocol stack the 
external client uses to communicate data : 

a specific act of the external client maintaining a session that uses the secure 
connection to communicate wilh the private corporat e networic; and 

during at least a portion of the specific act of the external cHent maintaining a 
session that uses the secure coimection, a specific act of the communication device 
retaining the ability to establish a separate and distinct coimection with another resource 
outside of the private corpomte n etwork. 
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2. (Corrently Amended) A method in accordance with Claim 1 , further comprising: 

during at least a portion of the specific act of the external client maintaining a 
session that uses the secure connection, a specific act o f es tabW ^ establishing a 
connection with the resource outside of the private corpomte n etwork. 

3. (Currently Amended) A method in accordance with Claim 1, wherein the specific 
act of the external client establishing a connection with the private corporat e network comprises: 

a specific act of using Transmission Control Protocol (TCP) to establish a 
connection with the private coiporato n etwork, 

4. (Original) A method in accordance with Claim 3, wherein the specific act of 
the external client providing security to the connection comprises: 

a specific act of the external client using a Secure Socket Layer (SSL) protocol to 
provide security to the coimection. 



5, (Canceled). 



6. (Original) A method in accordance with Claim 5, wherein the specific act of 
the extemal cUent providing security to the connection comprises: 

a specific act of the extemal client using a Secure Socket Layer (SSL) protocol to 
provide security to the connection. 

7. (Original) A method in accordance with Claim 5, wherein the specific act of 
the extemal client providing security to the connection comprises: 

a specific act of the extemal client using a Wireless Transport Layer Security 
(WTLS) to provide security to the connection. 
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8. (Canceled). 

9. (Currently Amended) A method in accordance with Claim 8, wherein the VPN 
access server is implemented on the same server machine as a proxy server that serves the 
private e orpomtQ n etwork. 

10. (Currently Amended) A method in accordance with Claim 8, wherein the VPN 
access server is implemented on a different server machine than a proxy server that serves the 
private ooiporato n etwork. 

1 1 . (Original) A method in accordance with Claim 1, wherein the public network 
comprises portions of the Internet. 
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12. (Currently Amended) In a computer program product for use in a network 
environment that includes a public network and a private coipomt & network, the public network 
including a client external to the private corponit e network, the computer program product for 
implementing a method of a communications device of the external client establishing a secure 
connection over a public network to the private corporate network without restricting the 
communications device to working through the private coiporate n etwork^ the computer program 
product including a computer-readable medium having stored thereon computer-executable 
instructions for performing the folio win p: following: 

a specific act of the external client establishing a connection with a virtual private 
network access serve r of the private network, over the public network using the 
communication device such that . the virtual private network server providing the 
external client-^e eomos part o f access to the private corporate networ k and therelbr e can 
acc e ss on e or m €>re internal r e sourceE o f as Uiou^ii the external client is part of the private 
corporat e n etwork; 

a specific act of the external client providing security to the connection through a 
communication protocol that resides at or above a socket layer in a protocol stack the 
extemai client uses to communicate data : 

a specific act of the external client maintaining a session that uses the secure 
connection to communicate with the private coiporat e network; and 

during at least a portion of the specific act of the external client maintaining a 
session that uses the secure connection, a specific act of the communication device 
retaining the ability to establish a separate and distinct connection with another resource 
outside of the private corporat e network. 

13. (Original) A computer program product in accordance with Claim 12, 
wherein the computer-readable media comprises a tangible computer readable medium- 
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14. (Currently Amended) A computer prograni product in accordance with Claim 12, 
wherein the computer-executable instructions for performing the specific act of the external 
client establishing a connection with the private ee rporat e network comprises a Transmission 
Control Protocol (TCP) module. 

15. (Original) A computer program product in accordance with Claim 14, 
wh^ein the computer-executable instructions for performing a specific act of the external client 
providing security to the connection comprises a Secure Socket Layer (SSL) module, 

16. (Original) A computer program product in accordance with Claim 12, 
wherein the computer-executable instructions for performing a specific act of the external client 
providing security to the connection comprises a Secure Socket Layer (SSL) module. 

17. (Original) A computer program product in accordance with Claim 12, 
wherein the computer-executable instructions for performing a specific act of the external client 
providing security to the connection comprises a Wireless Transport Layer Security (WTLS) 
module. 

18. (Canceled). 
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19. {Currently Amended) In a network environment that includes a public network 
and a private corporate nctworic, the public network including a client external to the private 
e erporate n etwork, a method of a conrmunicatiohs device of the external client establishing a 
secure connection over a public network to the private oorpomto n etwork without restricting the 
communications device to working through the private coTporat e network, the method 
comprising the foIlowiDp : following: 

a step for securely connecting to a virtual private network access server of the 
private corporat e-networ k thiX)UKh a communication protocol that resides at or above a 
socket layer in a protocol stack that the external client uses to commun icatejdata^whHe 
retafflitt^ in order to retain the ability to establish a separate and distinct connection with 
a resource outside of the private corporato network., t he virtual private network access 
server providing Guoh that the external client- bceomcQ part o f access to the private 
eorporat e network and ther e for e con acc B G[> one or moro internal re s ources as though the 
external client is part of the private corporat e networ k which arc othor^vioc inaccesgibl e to 
o xt o mol clicntri ; and 

during at \ c nnt a p ortion of th e st e p for s e curely conneotift ^ hilc secui-clv 
connected to the virtual private network access sex-yer . a specific act of accessing the 
resource outside of the private corporat e network. 
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20, (Currently Amended) A method in accordance with Claim 19, wherein the step 
for securely connecting to the private e orporato network comprises the following: 

a specific act of the external client establishing a connection with the private 
corporat e n etwork over the public network using the communication device; 

a specific act of the external client providing security to the connectionLand 

a specific act of the external client maintaining a session that uses the secure 
connection to communicate with the private coiporato n etwork ; and 

during Qt loQjjt n portion of the specific act of th e e xt e rnal el i eft^ mnintaming a 
GOGcion that uooo tho secure connection, a sp e cifh^ -aet- of the communication device 
roiaining the ability to establish a separat e and distinct c e Hncotion with anoth e r resourc e 
outoide of th e privat e corporate network . 

21. (Original) A method in accordance with Claim 11, wherein the pubHc 
network comprises portions of the Internet 
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22. (Currently Amended) In a network environment that includes a public network 
and a private corporat e n etwork connected to the public network, the public network including a 
client external to the private corporat e network, a method of a server computer system within a 
private corporate network establishing a secure cotmection with a communications device of the 
external cUent without restricting the communications device to working through the private 
eo rporat e n etwork, the method comprising t he followng; fotlowmg : 

a specific act of a virtual private network access server within the private 
eofpofate-network facilitating the establishment of a connection with the external cUent 
over the public networ k^ the virtual t>rivate network server providing s uch tf i at it is us 
though the external chent access to k -p^gt-ef-the private corporate network-aad-t h e r e fore 
can 00CC55 on e or more intomal ro o oureeo of as though the external client is part of the 
private corporat e-network which ore oth e rwise inacoossibl e to cxtGrnal olicnto ; and 

a specific act of the server computer system facilitating the providing of security 
to the connection through a communication protocol that resides at or above a socke t 
layer in a protocol stack used to communicate data , wherein the secure connection is 
estabUshed while allowing the external client to maintain the ability to estabhsh a 
separate and distinct connection directly with one or more external resources rather than 
having to route communication with the one or more extemal resources through the 
private corporate n etwork. 

23. (Previously Presented) A method in accordance with Claim 22, wherein the 
pubHc network comprises portions of the Internet. 

24. (Original) A method in accordance with Claim 22, wherein the specific act of 
the server computer system facilitating the establishment of a connection with the extemal cUent 
comprises: 

a specific act of using Transmission Control Protocol (TCP), to facilitate the 
establishment of a connection with the extemal client. 
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25. (Origmal) A method in accordance with Claim 22, wherein the specific act of 
the server computer system facilitating the providing of security to the connection comprises: 

a specific act of using Secure Socket Layer (SSL), to facilitate the providing of 
security to the connection. 

26. (Original) A method in accordance with Claim 22, wherein the specific act of 
the server computer system facilitating the providing of security to the connection comprises: 

a specific act of using Wireless Transport Layer Security (WTLS), to facilitate the 
providing of security to the connection. 
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